Sign up or log in to save this to your schedule and see who's attending!

Multi-tenant virtualization environments in the Data-center have a number of tunnelling mechanisms for the Cloud such as VXLAN, Geneve, GUE, PF_RDS, KCM etc See [http://www.spinics.net/lists/netdev/msg347648.html].

Traffic sent on these technologies today is mostly in the clear, but as the scale of these technologies continues to increase, there is a growing demand for tighter AAA, Traffic privacy, authentication, and integrity protection of the tenant Traffic,

The challenge here is "how to encrypt/secure multi-tenant Traffic that is tunnelled via kernel-managed TCP/UDP sockets". A number of alternatives have been discussed in the Networking community, such as a modified TLS and IPsec. This talk will present the pros and cons of each proposal, and ongoing work in this area, which follows up on the initial discussion at Netdev 1.1. in Seville, Spain.

Sowmini Varadhan is a Consulting Software Engineer in thenMainline Linux Kernel Group at Oracle Corp. where she worksnon projects spanning Kernel Networking, Distributed Computing, and Performance.nSowmini's background includes core contributions to multiplennetwork-stacks ranging from embedded kernels for routers tonserver OS-es. Sowmini has a B.Tech in MechanicalnEngineering from the Indian Institute of Technology, Madras andna PhD from the... Read More →